Major accountabilities:

• Ensure security risks are managed in line with ISRM strategy, the policy framework, laws and regulations and best in class industry standards -Collaborate with business to understand threats and ensure Novartis most critical business processes and data is protected.
• Ensure implementation of the information management framework to safeguard the integrity, confidentiality and availability of information owned, controlled or processed by Novartis.
• Deliver effective security training and awareness programs and coordinate delivery across functions and countries.
• Manage compliance with relevant country regulations.
• Support software asset and records management governance and deliver services to support business operations as well as for mergers, acquisitions and divestitures.
• Assess security risks around third parties and deliver services to reduce exposure -Perform assessments and verification of achieved quality levels and risks in respect to external legislative and regulatory requirements, as well as internal policies -Manage relationships at a functional level across divisions, countries and TT -Establish close collaboration with stakeholders to facilitate alignment with policies, risks as well as internal and external audits.
• Monitor adherence of the defined governance principles to ensure expected value is delivered -Take responsibility to ensure adherence with Security and Compliance policies and procedures within Information Management Policy scope

Key performance indicators:

• Effectiveness of oversight and leadership around information security risk and compliance activities.
• Transparency level of risks across the enterprise.
• Governance elements and principles established and enforced with high efficiency and effectiveness.
• Levels of collaboration/working relationship achieved with enterprise senior management.

Minimum Requirements:
Work Experience:

• Accountability.
• Strategy Development.
• Influencing without authority.
• Relationship Management.
• Collaborating across boundaries.
• Interactions with senior management.
• Experience working cross-functionally and trans-nationally.

Skills:

• Business Partnering.
• Communication Skills.
• Cyber Security.
• Influencing Skills.
• Information Security.
• IT Governance.
• Risk Management.
• Stakeholder Management.

Languages:

• English.
• Spanish